CVE-2025-44612

Name of the Vulnerable Software and Affected Versions Tinxy WiFi Lock Controller version v1 RF

Description The issue concerns the transmission of sensitive information in plaintext, including control information and device credentials. This allows attackers to possibly intercept and access sensitive information via a man-in-the-middle attack.

Recommendations For Tinxy WiFi Lock Controller version v1 RF, consider implementing encryption for sensitive data transmission to prevent interception. As a temporary workaround, restrict access to the device's network to minimize the risk of exploitation.